mirror of
https://github.com/AbdullahRizwan101/CTF-Writeups
synced 2024-11-25 21:30:17 +00:00
Update Cheat Sheet.md
This commit is contained in:
parent
a0512879ce
commit
1a6d75b261
1 changed files with 6 additions and 0 deletions
|
@ -613,6 +613,12 @@ Here `api-endpoint` can be for example `/api/v1/resources/books\?FUZZ\=.bash_his
|
||||||
### Web Shell Bash
|
### Web Shell Bash
|
||||||
`bash -c "<bash_rev_shell>"`
|
`bash -c "<bash_rev_shell>"`
|
||||||
|
|
||||||
|
### Cacti
|
||||||
|
|
||||||
|
This is remote code execution exploit for cacti 1.2.8 <br/>
|
||||||
|
|
||||||
|
https://zerontek.blogspot.com/2020/10/hacking-walkthrough-cacti-128-ubuntu.html
|
||||||
|
|
||||||
### Wordpress
|
### Wordpress
|
||||||
using wpscan we can find users or do some further enumeration of wordpress version
|
using wpscan we can find users or do some further enumeration of wordpress version
|
||||||
* `wpscan --url http://<ip>/wordpress -e u` Enumerate Users
|
* `wpscan --url http://<ip>/wordpress -e u` Enumerate Users
|
||||||
|
|
Loading…
Reference in a new issue